Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/1293d1-fc7b-4b08-8c9b-3bbac4f5d935/1/vn43IK8kL1jvL0qz4RN4w-QXiE8.roa
File: vn43IK8kL1jvL0qz4RN4w-QXiE8.roa (raw, json)
Hash identifier: mg8iyLUiWumpfeJ8HLYyMYqI7UqWDR6rYpd/on/Cwj8=
Subject key identifier: BE:7E:37:20:AF:24:2F:58:EF:2F:4A:B3:E1:13:78:C3:E4:17:88:4F
Certificate issuer: /CN=78ff87e2633bb23286754eca11d83a63b8c3dc0b
Certificate serial: E3C978
Authority key identifier: 78:FF:87:E2:63:3B:B2:32:86:75:4E:CA:11:D8:3A:63:B8:C3:DC:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eP-H4mM7sjKGdU7KEdg6Y7jD3As.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/1293d1-fc7b-4b08-8c9b-3bbac4f5d935/1/vn43IK8kL1jvL0qz4RN4w-QXiE8.roa
Signing time: Sat 01 Jan 2022 12:01:51 +0000
ROA not before: Sat 01 Jan 2022 12:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8412
IP address blocks: 195.182.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14928248 (0xe3c978)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78ff87e2633bb23286754eca11d83a63b8c3dc0b
Validity
Not Before: Jan 1 12:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be7e3720af242f58ef2f4ab3e11378c3e417884f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:35:a4:6c:36:31:83:f8:41:4e:b6:38:3a:42:
84:65:97:53:48:dc:9b:f3:63:a6:d8:65:74:5f:39:
95:a1:6a:8d:09:6f:aa:b2:98:7b:8d:36:04:76:8a:
c8:9a:91:63:7c:ef:e2:55:dc:8f:3f:d3:12:60:48:
8c:cb:61:4a:f7:77:a5:bd:cf:f5:cf:6c:a5:1d:2b:
20:b7:c0:9f:2f:00:f9:21:6f:eb:8d:59:a0:b9:65:
d3:4a:f4:22:0a:fb:0f:ec:3a:df:f9:ec:4b:a5:57:
b0:c7:12:bc:f0:74:f8:ba:6c:5d:19:76:50:3a:cd:
a6:b0:3f:ab:22:b2:e6:80:ca:8c:cb:1c:a6:a8:b3:
07:81:16:2c:a0:50:b0:69:c3:06:cc:e9:e2:e8:4c:
fd:de:14:d5:b3:d2:3d:92:bb:99:70:73:c6:ef:9b:
6c:22:99:df:6f:79:71:a4:8a:c9:15:4d:16:c0:24:
96:ba:9c:90:0f:d8:b4:7a:36:7d:5c:1e:7b:05:c5:
34:c6:29:b3:09:2a:b8:36:9b:bb:b5:07:74:7e:7a:
5c:a1:2b:5d:38:ab:98:7e:37:bf:5c:41:f1:7c:c2:
40:cd:85:45:31:4f:67:e1:c5:9c:2e:e8:2b:d7:a6:
da:0d:3d:03:da:18:05:a5:18:5a:3c:d5:51:11:10:
7f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7E:37:20:AF:24:2F:58:EF:2F:4A:B3:E1:13:78:C3:E4:17:88:4F
X509v3 Authority Key Identifier:
keyid:78:FF:87:E2:63:3B:B2:32:86:75:4E:CA:11:D8:3A:63:B8:C3:DC:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eP-H4mM7sjKGdU7KEdg6Y7jD3As.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/1293d1-fc7b-4b08-8c9b-3bbac4f5d935/1/vn43IK8kL1jvL0qz4RN4w-QXiE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/1293d1-fc7b-4b08-8c9b-3bbac4f5d935/1/eP-H4mM7sjKGdU7KEdg6Y7jD3As.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.55.0/24
Signature Algorithm: sha256WithRSAEncryption
78:71:d7:3e:e5:f1:9e:8f:05:14:dd:63:98:74:06:49:6c:c1:
b1:97:89:05:14:e0:42:b1:5d:91:88:50:8f:63:91:67:36:dc:
60:0c:98:c7:a2:c6:5d:39:50:e1:5b:58:69:61:7e:af:b1:7e:
b9:dd:9a:e9:d7:ab:a7:e8:bc:b1:f0:10:90:38:9e:88:37:3c:
1f:b3:32:d4:5d:13:ee:fe:98:4c:c5:0c:9b:5c:8f:6f:f3:1e:
b2:e1:d4:45:fc:46:74:b3:a0:2b:1f:32:cb:c3:19:1a:e0:ef:
be:ce:0b:04:fa:ae:a6:45:6b:da:cf:43:c8:6d:2a:c0:c1:4d:
69:36:1a:38:3c:5c:44:38:3e:01:7e:b8:b3:81:2f:1d:18:31:
e1:1f:b4:a1:83:8b:e0:b0:17:6d:97:56:0d:22:89:af:97:90:
53:af:8b:f1:ae:9c:5d:20:41:8b:fb:29:dc:59:e3:7a:12:9b:
df:32:fe:07:35:e1:5e:8c:0b:1b:7d:7d:a4:6a:be:a2:0e:7f:
19:f7:27:71:55:fe:57:9a:53:16:af:98:bb:40:99:63:d7:a0:
87:83:0e:e8:e9:7c:51:d5:9f:8a:26:53:25:98:88:e4:6d:c5:
36:de:27:05:db:5e:fb:ea:3e:f6:d4:e5:90:79:3c:ff:64:40:
b3:47:cd:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:37 2023 by rpki-client on console-ams.rpki-client.org